Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wcJ0L43T6tdNY4-eWWxdSeG2btc.roa
File: wcJ0L43T6tdNY4-eWWxdSeG2btc.roa (raw, json)
Hash identifier: fgY9xfqnf+gZGhHt3n+oath8/4z4iXF/ofSVfhk946I=
Subject key identifier: C1:C2:74:2F:8D:D3:EA:D7:4D:63:8F:9E:59:6C:5D:49:E1:B6:6E:D7
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 09B7A084
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wcJ0L43T6tdNY4-eWWxdSeG2btc.roa
Signing time: Mon 20 Jun 2022 06:53:44 +0000
ROA not before: Mon 20 Jun 2022 06:53:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 91.186.216.0/22 maxlen: 24
83.147.232.0/22 maxlen: 24
83.147.240.0/22 maxlen: 24
83.147.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163029124 (0x9b7a084)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jun 20 06:53:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1c2742f8dd3ead74d638f9e596c5d49e1b66ed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:af:8c:9b:4e:1c:21:3e:1e:0f:7e:50:92:93:
6b:46:d4:01:5e:89:35:03:22:ac:a5:fc:bd:25:5d:
de:c3:8c:fa:6f:91:0f:22:20:8a:39:7a:2d:6c:21:
95:32:e6:a9:4f:fb:be:32:a0:68:4a:4d:e7:b4:bc:
d9:e3:59:fe:7c:52:db:37:91:62:bb:9c:41:45:da:
7a:d8:9b:04:37:65:7b:24:87:12:5b:e8:67:80:1a:
a1:5d:e7:b9:e9:65:c2:a8:3f:96:b6:09:26:70:a1:
81:5f:0f:f8:1c:c7:47:dd:d0:d5:e7:2d:2e:f3:25:
2b:af:0e:93:d1:c8:bf:51:70:b8:08:e2:65:40:70:
57:ac:d0:31:a0:dd:a3:62:7e:fb:fd:c3:1d:00:9e:
9c:03:80:dc:a2:a8:8e:bd:f1:78:16:e1:e1:e1:25:
d6:ec:7c:35:e0:60:ec:f6:70:c4:d3:62:5e:0c:3f:
58:5b:03:78:83:90:62:b4:34:d0:7e:fa:ea:04:46:
ee:05:43:df:bd:83:30:43:00:12:c5:22:32:a4:da:
be:a8:e5:0b:a9:2f:1f:2a:9f:8f:ad:05:4c:d6:2b:
57:fb:14:a8:45:93:57:20:61:38:e7:61:4c:41:68:
a6:ae:d0:7f:43:57:5b:29:10:0e:4c:04:38:07:7d:
60:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:C2:74:2F:8D:D3:EA:D7:4D:63:8F:9E:59:6C:5D:49:E1:B6:6E:D7
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wcJ0L43T6tdNY4-eWWxdSeG2btc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.232.0/22
83.147.240.0/22
83.147.252.0/22
91.186.216.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:f2:40:66:03:49:76:a9:1e:49:01:9c:79:5b:f9:53:69:9e:
49:5f:b7:b4:ca:1e:71:ef:e2:94:0c:17:2b:90:ee:74:93:51:
f1:92:5e:c0:af:78:ce:f2:fb:31:cf:86:33:7f:11:a1:31:03:
44:48:3d:67:53:71:65:58:fb:9e:d5:28:e7:64:ca:f1:ba:45:
e1:c3:fa:f1:bc:23:08:b4:68:f3:ba:f4:d1:b2:92:84:40:44:
e8:d9:60:75:dc:11:d5:48:93:69:29:50:01:8b:8a:71:7f:64:
29:32:b9:89:9f:70:ec:eb:a3:76:0d:90:d6:c5:da:9d:8d:54:
52:44:87:8d:62:31:bf:4d:fb:b8:1c:b8:9d:0e:5b:45:4b:d4:
7f:38:fd:e3:d8:db:29:9f:0a:d5:40:30:25:46:3b:3d:26:31:
0a:db:0a:8b:7e:56:88:cf:d0:98:96:6c:e6:be:06:b7:e7:7f:
7d:c0:14:79:bc:66:e5:06:f9:34:0b:2e:ac:06:a3:11:b5:ba:
a7:aa:8d:0a:e6:d8:1b:d3:c2:eb:0f:62:90:a1:d4:bf:c4:cc:
69:13:c6:94:3e:17:ba:84:3f:0e:51:33:1b:35:8c:89:f5:9b:
b7:85:67:47:eb:c1:02:e5:e4:90:df:65:3c:10:23:23:a5:da:
cc:ae:43:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:45 2023 by rpki-client on console-fra.rpki-client.org